Message Image

Skip main navigation (Press Enter).

SRX

last person joined: 4 days ago

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

limit SSH access to internal network ?

Jump to Best Answer

Erdem05-08-2014 05:55

Hello. May I limit access to SSH on my SRX to internal network only by this ?: ssh { interface ...

Erdem05-08-2014 06:01

In SRX, its recommended to create filters when we want to allow ssh from specific IPs or you can use ...

Raveen05-08-2014 09:11Best Answer

Hello Filters and policies are required to control SSH access at granlular level(specific address ...

1. limit SSH access to internal network ?

0 Recommend
Erdem
Posted 05-08-2014 05:55

Reply Reply Privately
Hello. May I limit access to SSH on my SRX to internal network only by this ?:

ssh {
interface vlan.0;
}

Seems to be I can't... Or must I create policies and filters for this ?
2. RE: limit SSH access to internal network ?

0 Recommend
Erdem
Posted 05-08-2014 06:01

Reply Reply Privately
In SRX, its recommended to create filters when we want to allow ssh from specific IPs or you can use host-inbound option when you want to allow ssh from particular zone/interface.

Thanks,

SHKM
3. RE: limit SSH access to internal network ?
Best Answer

0 Recommend
Raveen
Posted 05-08-2014 09:11

Reply Reply Privately
Hello

Filters and policies are required to control SSH access at granlular level(specific address etc..)

Since it is SRX, you have the flexibity to control SSH access at zone level.

You could bind vlan.0 interface to a zone and allow host-inbound-traffic for that specific zone only.

Reference:

http://www.juniper.net/techpubs/software/junos-security/junos-security10.2/junos-security-swconfig-security/topic-41194.html

Regards,

Raveen

Powered by Higher Logic